Riyya Ahmed
|
November 10, 2023

Protecting against Adobe’s Zero Day Vulnerability CVE-2023-21608

Recently, the Cybersecurity and Infrastructure Security Agency (CISA) added a new Adobe Acrobat Reader vulnerability to its catalog - CVE-2023-21608. Versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected due to a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. This vulnerability can be exploited by bad actors if a user opens a malicious file.

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to companies.

While most detection-based solutions will be largely ineffective whilst the exploit is still classed as zero-day, there are other ways to mitigate the threat. Glasswall’s zero-trust CDR technology is fast to deploy and can protect organizations and government departments against complex file-based threats instantly, even if they have not been observed before and without the need for temporary mitigation solutions. Our patented CDR technology treats all files as untrusted and instantly rebuilds the file back to a ‘known-good’ standard. Our CDR technology also analyzes all embedded components of a file's internal components.

No element of the file can avoid analysis, sanitization or removal, protecting users comprehensively against vulnerabilities in Adobe Acrobat such as CVE-2023-21608.

Learn more about Glasswall CDR

Sources:

https://nvd.nist.gov/vuln/detail/CVE-2023-21608

Riyya Ahmed

Our Senior Technical Writer and Product Marketing Manager, Riyya, is exceptional at authoring, organizing, and simplifying our product documentation. Using her keen eye for detail and wealth of experience in tech, Riyya helps our clients and partners seamlessly integrate with industry-leading Zero-Trust CDR.

Stay connected

Follow Glasswall on LinkedIn

Try Glasswall CDR

We’re offering a freemium solution to help you try out our Content Disarm and Reconstruction (CDR) technology. Experience the power of zero-trust file protection yourself!

Try cleaning a file

Related Articles

AI
Thought leadership
Threat analysis

The Morris II worm: A new AI threat shining a light on Generative AI-powered application security shortfalls

Thought leadership
Threat analysis

Analyzing the rise of ransomware: How Glasswall CDR delivers proactive zero-trust protection

Thought leadership
Threat analysis

The power of proactive security: understanding Sandboxing and Zero-Trust CDR

Book a demo

Talk to us about our industry-leading CDR solutions

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
W3C accessibility certification
Learn about CDR
What is CDR?How does CDR work?Glasswall capabilitiesWhat are file-based threats?Glasswall vs competitors
Industries
Defense and intelligenceCloud Service ProvidersCritical infastructureFinancial servicesMSPs / MSSPs
Products
Embedded EngineHaloConstellationsMeteorClean Room
APIs
Synchronous APIAsynchronous APIPolicy Management APILicense Management APIMenlo Security Platform APIICAP Profile Management APIScan Management APIScan Results API
Partners
About our partner programOur partnersIntegrationsBecome a partner
Resources
DocumentationSecurity certificationsProduct datasheetsVideo demosCase studiesUse casesBlog
Get in touch
Contact usSupport
Company
About GlasswallOur peopleCareersPatentsResponsible disclosure policyPrivacy policyAccessibility statement
Follow us

LinkedIn

@GlasswallCDR

YouTube

© Glasswall Solutions Limited. All Rights Reserved | Privacy & Terms

Company registered number: 05573793 | Company registered address: 85 Great Portland Street, London, W1W 7LT